邮件数据的加密 [英] Encryption of post data

问题描述

我正在寻找加密表单数据的想法。例如，如果用户输入

a密码，我想在发布之前对其进行加密，然后在服务器端解密

。

密码的明显答案是单向散列它。不幸的是，这个

用于提前不知道的数据 - 我要求

需要加密任何密码样式的文本框条目，然后解密它们

服务器。当

SSL不存在时，这旨在提供优于空的安全性，并且很可能只在内联网上使用。


我的理解是对称的algos是最快的，但问题是b / b $ b加密/解密的单个密钥需要发送到

客户端机器，这意味着它，以及发布数据，可以通过

任何人窥探。


一个非对称算法，它似乎会做诀窍。公共

密钥可以用于客户端加密，然后私钥可以是/ b $ b用于服务器端解密。但是，从谷歌搜索，似乎从性能的角度来看，

javascript可能无法完成任务。我没有找到关于这个主题的明确答案。


对此有任何想法或指示都非常感谢。

TIA，

Pete

I''m looking for ideas on encrypting form data. For example, if a user enters
a password, I would like to encrypt it before it gets posted, then decrypt
it server-side.

The obvious answer for a password is to 1-way hash it. Unfortunately, this
is for data that will not be known ahead of time - I have the requirement of
needing to encrypt any password-style textbox entries, then decrypt them on
the server. This is intended to provide ''better-than-nothing'' security when
SSL is not present, and most likely would only be employed over an intranet.

It''s my understanding that symmetric algos are fastest, but the problem
there is that the single key to encrypt/decrypt will need to be sent to the
client machine, which means it, along with the post data, is viewable by
anyone snooping.

An asymmetric algorithm, it would then seem, would do the trick. A public
key could be used client-side to encrypt, and then a private key could be
used server-side to decrypt. However, from googling on this, it appears that
javascript might not be up to the task from a performance perspective. I
haven''t found any clear answers on this topic.

Any thoughts or direction on this are much appreciated.

TIA,
Pete

推荐答案

Peter Young写道：

Peter Young wrote:

我正在寻找加密表单数据的想法。例如，如果用户输入密码，我想在发布之前对其进行加密，然后在服务器端对其进行解密。

I''m looking for ideas on encrypting form data. For example, if a user
enters a password, I would like to encrypt it before it gets posted, then
decrypt it server-side.

http with SSL，AKA https。

-

David Dorward http://david.us-lot.org/

" Peter Young" <哟***** @ comcast.no.net.spam.please>在消息中写道

新闻：JwbYa.54410

"Peter Young" <yo*****@comcast.no.net.spam.please> wrote in message
news:JwbYa.54410

cF.19329@rwcrnsc53 ...

cF.19329@rwcrnsc53...

我正在寻找想法加密表单数据。例如，如果用户
输入密码，我想在发布之前对其进行加密，然后在服务器端解密。

这是我的理解对称的algos是最快的，但问题是，加密/解密的单个密钥需要发送到客户端机器的
，这意味着它与发布数据一起可以通过以下方式查看：
任何人窥探。

一个不对称的算法，它看起来会成功。公共密钥可以用于客户端加密，然后私钥可以在服务器端用于解密。但是，通过Google搜索，从性能角度来看，javascript可能无法完成任务。我没有找到关于这个主题的任何明确答案。

对此有任何想法或指示非常感谢。

I''m looking for ideas on encrypting form data. For example, if a user enters a password, I would like to encrypt it before it gets posted, then decrypt
it server-side.

It''s my understanding that symmetric algos are fastest, but the problem
there is that the single key to encrypt/decrypt will need to be sent to the client machine, which means it, along with the post data, is viewable by
anyone snooping.

An asymmetric algorithm, it would then seem, would do the trick. A public
key could be used client-side to encrypt, and then a private key could be
used server-side to decrypt. However, from googling on this, it appears that javascript might not be up to the task from a performance perspective. I
haven''t found any clear answers on this topic.

Any thoughts or direction on this are much appreciated.

以下是您需要的：您对文本进行常规编码。您使用文本发送解码密钥

，但您使用公钥/私钥对其进行编码

加密（根据法律允许的位数）。


最简单的方法是使用内置安全性：安全套接字和

安全http。

Here is what you need: You do a normal encoding of the text. You send
the decoding key with the text, but you encode it using public/private key
encryption (with as many bits as the law allows).

The simplest way to do that is to use built-in security: secure sockets and
secure http.

这篇关于邮件数据的加密的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！